[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Entropy distribution to virtual machines

To: BMF <badmotherfsckr@xxxxxxxxx>
Subject: [Full-disclosure] Entropy distribution to virtual machines
From: coderman <coderman@xxxxxxxxx>
Date: Mon, 25 Jun 2012 12:03:55 -0700

On Mon, Jun 25, 2012 at 12:21 AM, BMF <badmotherfsckr@xxxxxxxxx> wrote:
> ...
> I have a server with one of these in it:
>
> http://www.entropykey.co.uk/
>
> although I still need to find a reasonably secure way to share the
> entropy with all of my VMs where it is really needed.

check out http://www.vanheusden.com/entropybroker/ or virtio-rng.
i haven't used either; does anyone have positive experiences?

for now, roll my own: pass entropy into guest kernel command line
which is mixed into guest pool during init, then entropy distribution
from host to guest egd's via tcp once networking is up.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] How to access your favorite sites in the event of a DNS takedown ?
Next by Date: Re: [Full-disclosure] How to access your favorite sites in the event of a DNS takedown ?
Previous by thread: [Full-disclosure] CVE-2012-2381: Apache Roller Cross-Site-Scripting (XSS) vulnerability
Next by thread: [Full-disclosure] SEC Consult SA-20120626-0 :: Zend Framework - Local file disclosure via XXE injection
Index(es):
- Date
- Thread